CVE-2021-1220

🗓️ 24 Mar 2021 21:11:15Reported by ciscoType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 54 Views

Multiple vulnerabilities in the web UI of Cisco IOS XE Software could allow an authenticated, remote attacker with read-only privileges to cause the web UI software to become unresponsive and consume vty line instances, resulting in a denial of service (DoS) condition

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
NVD	CVE-2021-1220	24 Mar 202121:15	–	nvd
CNVD	Cisco IOS XE Denial of Service Vulnerability (CNVD-2021-22456)	25 Mar 202100:00	–	cnvd
Cvelist	CVE-2021-1220 Cisco IOS XE Software Web UI Denial of Service Vulnerabilities	24 Mar 202120:16	–	cvelist
Prion	Design/Logic Flaw	24 Mar 202121:15	–	prion
Tenable Nessus	Cisco IOS XE Software Web UI Denial of Service (cisco-sa-xe-webui-dos-z9yqYQAn)	24 Mar 202100:00	–	nessus
Cisco	Cisco IOS XE Software Web UI Denial of Service Vulnerabilities	24 Mar 202116:00	–	cisco
ICS	ICSA-21-110-02_Rockwell Automation Stratix Switches	20 Apr 202100:00	–	ics

Nvd

Node

cisco ios_xeMatch3.15.1xbs

cisco ios_xeMatch3.15.2xbs

cisco ios_xeMatch16.11.1

cisco ios_xeMatch16.11.1a

cisco ios_xeMatch16.11.1b

cisco ios_xeMatch16.11.1c

cisco ios_xeMatch16.11.1s

cisco ios_xeMatch16.11.2

cisco ios_xeMatch16.12.1

cisco ios_xeMatch16.12.1a

cisco ios_xeMatch16.12.1c

cisco ios_xeMatch16.12.1s

cisco ios_xeMatch16.12.1t

cisco ios_xeMatch16.12.1w

cisco ios_xeMatch16.12.1x

cisco ios_xeMatch16.12.1y

cisco ios_xeMatch16.12.1z

cisco ios_xeMatch16.12.2

cisco ios_xeMatch16.12.2a

cisco ios_xeMatch16.12.2s

cisco ios_xeMatch16.12.2t

cisco ios_xeMatch16.12.3

cisco ios_xeMatch16.12.3a

cisco ios_xeMatch16.12.3s

cisco ios_xeMatch16.12.4

cisco ios_xeMatch16.12.4a

cisco ios_xeMatch17.1.1

cisco ios_xeMatch17.1.1a

cisco ios_xeMatch17.1.1s

cisco ios_xeMatch17.1.1t

cisco ios_xeMatch17.1.2

cisco ios_xeMatch17.2.1

cisco ios_xeMatch17.2.1a

cisco ios_xeMatch17.2.1r

cisco ios_xeMatch17.2.1v

[
  {
    "product": "Cisco IOS XE Software",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xe-webui-dos-z9yqYQAn

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Mar 2021 21:15Current

5.2Medium risk

Vulners AI Score5.2

CVSS23.5

CVSS34.3

EPSS0.00205

CWE-20

cisco ios xe software vulnerabilities remote attacker dos denial of service http packets nvd